When Facebook broke the Web

A few minutes of online confusion revealed the social network's all-knowing, all-seeing dark side

February 9, 2013 12:18AM (UTC)

Around 7:30 p.m. Eastern time on Thursday, Facebook broke the Internet for about 15 minutes.

Early media reports characterized the outage as Facebook "taking down" a host of major websites. But that's not really what happened. If you were online and logged into Facebook in one tab of your browser, and then tried to visit another site in another tab that happened to include a Facebook Like button you got bounced to a Facebook error page. But there was an easy fix: You could log out of Facebook, or open up another browser. Problem solved.

Advertisement:

Of course, for many people, it wasn't immediately clear what was happening, which led to a lot of confusion. Why was a visit to ESPN or Salon resulting in a Facebook page. The Internet sure seemed broken for a few minutes.

But the chaos and despair and mock hilarity -- SKYNET HAS AWOKEN! -- passed quickly, and everyone soon got back to their normal browsing business. Facebook limited itself to an anodyne response downplaying the whole affair: "For a short period of time, there was a bug that redirected people from third-party sites integrated with Facebook to Facebook.com. The issue was quickly resolved.”

Nothing to see here folks, move along, move along.

Not so fast! We should stop and think about what really happened. By demonstrating a direct connection between our Facebook logins and the Facebook Like buttons on non-Facebook pages, Facebook inadvertently advertised exactly how much it potentially knows about all our Web browsing habits.

Facebook critics have long warned that the way the Like button is implemented across the Web has serious privacy implications. Every time a person visits a Web page with a Facebook Like button, that information is stored in a cookie placed on your computer. It is a trivial matter to connect that information with the cookies set when you actually log into Facebook -- information, incidentally, that includes your real name. Let's emphasize this point: Facebook has the technical capability to connect your real name to every website you visit that has a Facebook Like button embedded in it. And the set of websites captured by the terms "third party sites integrated with Facebook" turns out to be very large indeed.